Abstract: This paper introduces a three-factor authentication project for the thin client/server system, which adds a device authentication factor on the traditional double-factor authentication. The realization method of the authentication protocol is also given, followed by a rough valuation on its practicability and security. Practical applications prove this authentication project is feasible.

Key words: Thin client/server, Authentication, Security

摘要： 提出了一套基于瘦客户机/服务器体系的三因素身份认证方案，在双因素身份认证的基础上，引入了设备认证的概念。文中给出了具体的认证协议实现方法，并对协议的实用性和安全性进行了评估。有关的实践应用表明，该认证方案是可行的。

关键词: 瘦客户机/服务器, 认证, 安全